1 files changed, 6 insertions, 2 deletions

diff --git a/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOFrontChannelServlet.java b/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOFrontChannelServlet.java
index eb5752982..67921c689 100644
--- a/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOFrontChannelServlet.java
+++ b/id/ConfigWebTool/src/main/java/at/gv/egovernment/moa/id/configuration/auth/pvp2/servlets/SLOFrontChannelServlet.java
@@ -120,6 +120,8 @@ public class SLOFrontChannelServlet extends SLOBasicServlet {
 				//build SLO request to IDP
 				LogoutRequest sloReq = createLogOutRequest(nameID, nameIDFormat, request);			
 				
+				request.getSession().setAttribute(Constants.SESSION_PVP2REQUESTID, sloReq.getID());
+				
 				//send message
 				sendMessage(request, response, sloReq, null);
 								
@@ -132,7 +134,7 @@ public class SLOFrontChannelServlet extends SLOBasicServlet {
 				messageContext.setMetadataProvider(getConfig().getMetaDataProvier());
 				
 				SAML2HTTPRedirectDeflateSignatureRule signatureRule = new SAML2HTTPRedirectDeflateSignatureRule(
-						TrustEngineFactory.getSignatureKnownKeysTrustEngine());
+						PVP2Utils.getTrustEngine(getConfig()));
 				SAML2AuthnRequestsSignedRule signedRole = new SAML2AuthnRequestsSignedRule();
 				BasicSecurityPolicy policy = new BasicSecurityPolicy();
 				policy.getPolicyRules().add(signatureRule);
@@ -141,9 +143,11 @@ public class SLOFrontChannelServlet extends SLOBasicServlet {
 						policy);		
 				messageContext.setSecurityPolicyResolver(resolver);
 				messageContext.setPeerEntityRole(IDPSSODescriptor.DEFAULT_ELEMENT_NAME);
+
+				decode.decode(messageContext);
 				
 				signatureRule.evaluate(messageContext);		
-				decode.decode(messageContext);
+
 				
 				processMessage(request, response, 
 						messageContext.getInboundMessage(), messageContext.getRelayState());